GDPR Compliance Policy (Europe).

Last Updated: October 24th, 2024

1. Introduction
Mega Hangar Shopping Online is committed to protecting the privacy and security of our customers, and we fully recognize the importance of GDPR (General Data Protection Regulation) compliance for individuals within the European Union (EU) and European Economic Area (EEA). This policy explains how we collect, use, and protect your personal data in compliance with the GDPR, and your rights regarding your data.

By using our website or services, you consent to the collection and processing of your personal data as described in this policy.

2. Scope of the GDPR Policy
This GDPR Compliance Policy applies to all personal data collected by Mega Hangar Shopping Online from customers and users in the EU and EEA regions. It covers all aspects of data collection, processing, storage, and sharing in relation to any data that can identify a living individual.

3. Data Controller Information
Mega Hangar Shopping Online is the data controller for the personal data we collect and process.

• Business Name: Mega Hangar Shopping Online by Dignitas Consultoria
• Company Registration Number: [10387608000174]
• Contact Email: help@megahangar.com

4. Types of Personal Data We Collect
We collect and process the following types of personal data:

• Personal Identification Information: Name, email address, billing address, shipping address, phone number.
• Payment Information: Credit card details, billing information.
• Account Information: Username, password, order history, and preferences.
• Website Interaction Data: IP address, browser type, device type, geographic location, pages visited, time spent on pages, and other browsing activity.
• Communication Data: Any correspondence you send to us, including customer support inquiries, reviews, or feedback.

5. Legal Basis for Processing Personal Data
We process personal data in accordance with the GDPR under the following legal bases:

• Consent: We may process personal data based on your explicit consent, especially when you sign up for newsletters or participate in surveys.
• Contractual Necessity: We process personal data to fulfill contractual obligations, such as processing orders, shipping products, and managing customer accounts.
• Legal Obligation: We may process personal data as required by law, such as complying with tax and accounting regulations.
• Legitimate Interests: We may process personal data based on our legitimate interests, such as marketing, customer service, fraud prevention, and improving our products and services, provided that such interests do not override your privacy rights.

6. How We Use Your Personal Data
We use the personal data we collect for the following purposes:

• To process and complete orders, including payment processing, shipping, and order tracking.
• To communicate with you regarding your orders, product updates, and promotional offers.
• To respond to customer service requests, inquiries, and support.
• To send marketing communications with your consent (e.g., newsletters, special promotions).
• To improve our website, products, services, and customer experience.
• To comply with legal obligations such as tax reporting and fraud prevention.

7. How We Protect Your Data
We are committed to ensuring the security of your personal data. We implement appropriate technical and organizational measures to prevent unauthorized access, disclosure, alteration, or destruction of your personal data. This includes:

• Secure encryption technologies for payment information.
• Regular security assessments and updates to our systems.
• Access control policies limiting access to personal data only to authorized personnel.
• Compliance with industry standards for data protection and privacy.

8. Sharing Your Data with Third Parties
We may share your personal data with third-party service providers to help us run our business and provide services to you. These third parties may include:

• Payment processors (e.g., credit card companies, banks).
• Shipping and logistics providers.
• Customer service platforms.
• Marketing and advertising partners.

We ensure that all third parties we work with comply with GDPR requirements and maintain the confidentiality and security of your personal data. We do not sell your personal data to third parties.

9. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, and in accordance with any legal, regulatory, or contractual obligations.

After the retention period has expired, your personal data will be securely deleted or anonymized, unless we have a legitimate reason to retain it for an extended period (e.g., ongoing customer service or legal disputes).

10. Your Rights Under GDPR
As a data subject, you have several rights under the GDPR regarding your personal data, including:

• Right of Access: You have the right to request access to the personal data we hold about you.
• Right to Rectification: You have the right to correct any inaccurate or incomplete personal data we hold about you.
• Right to Erasure (Right to be Forgotten): You have the right to request the deletion of your personal data, subject to certain exceptions.
• Right to Restriction of Processing: You can request that we limit the processing of your personal data in specific circumstances.
• Right to Data Portability: You can request a copy of your personal data in a structured, commonly used, and machine-readable format.
• Right to Object: You have the right to object to the processing of your personal data, particularly in relation to direct marketing.
• Right to Withdraw Consent: If we rely on your consent for processing your personal data, you can withdraw your consent at any time.
• Right to Lodge a Complaint: If you believe that we have not respected your rights, you have the right to lodge a complaint with a supervisory authority, such as the Information Commissioner’s Office (ICO) in the EU.

To exercise any of these rights, please contact us at help@megahangar.com. We will respond to your request within the required timeframes.

11. International Data Transfers
We may transfer your personal data to countries outside the EU/EEA if necessary for business purposes, such as processing orders, payment, or storage of data. When transferring personal data outside the EU/EEA, we ensure that appropriate safeguards are in place, such as the use of standard contractual clauses approved by the European Commission.

12. Consent Management
We obtain consent for processing your personal data where required by law, and we provide a mechanism for you to manage or withdraw your consent at any time. You can update your communication preferences or withdraw consent to receive marketing emails by following the unsubscribe link in our emails or by contacting us directly.

13. Cookies and Tracking Technologies
We use cookies and similar tracking technologies on our website to enhance your experience, analyze site traffic, and for marketing purposes. You have the right to accept or decline cookies when you visit our website. For more information on our use of cookies, please see our Cookie Policy [Insert link to Cookie Policy].

14. Changes to This Policy
We reserve the right to update or modify this GDPR Compliance Policy from time to time. Any changes will be posted on this page with the updated effective date. We encourage you to review this policy periodically to stay informed about how we are protecting your personal data.

15. Contact Us
If you have any questions or concerns about this GDPR Compliance Policy or how we handle your personal data, please contact us at:

• Email: help@megahangar.com

By using our services, you confirm that you understand and accept the terms of this GDPR Compliance Policy.